Hacking!!!!!!!!!!!!!!!!!!!!!
Hi Friends, I need some information on hacking which is surely to gain knowledge and secure my corporate n/w. My office has Cisco 3600 Router for internet connaction. 1. How can someone hack the Router. 2. If internet uses is trying to hack webserver using a hacking tool which is using port 80, how the administrator can block this action still allowing the trusted users to access the webserver. Thanks and Regards imran Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com">http://www.hotmail.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNP Security Specialization
Hi Friends, For getting CCNP securtiy Specialization, do I need to take all this exams. 1. 640-442 MCNS Managing Cisco Network Security (MCNS) 2. 9E0-571 CSPFA Cisco Secure PIX Firewall Advanced (CSPFA) (see also prerequisite course Cisco Secure PIX Firewall Fundamentals CSPFF) 3. 9E0-558 CSIDS (formerly NRIO) Cisco Secure Intrusion Detection System (CSIDS) (formerly NRIO) 4. 9E0-570 CSVPN Cisco Secure VPN (CSVPN) Any idea about the books I need to buy. Please help me. Regards, imran _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Multiple ISP Leased Line [7:5536]
Hi friends, WEBSEVER--FIREWALL---(E0)ROUTER1(S0)-(S0)ROUTER2(ISP1)--INTERNET | | (S1)-(S0)ROUTER3(ISP2)--INTERNET I have Webserver which is NATed with the Valid IP from ISP1 and has DNS entry at the ISP1 site. If the user is trying to access the webserver from the net, he will goto ISP1 and from there he will reach the webserver. If the Link btn ISP1 and ROUTER1(S0) goes down, how the user will access the websrever from the net. I know I cannot have multiple DNS entry for the same hostname even with multiple ISP. My objective is the User should still access the net through redundant ISP link. Is there any solution for this. regards imran _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=5536&t=5536 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IP Multicast Configuration [7:7114]
Hi Friends I have 2 checkpoint Firewalls configured for high availability and load balancing mode. I need to configure the IP Multicast on both the Internal and external interfaces of both firewall. I have configured the common virtual IP on both the external and internal I/Fs. I am using 2900 XL series switch with 12.0(5)XU for connecting both the internal and external I/Fs of the firewall. I need to configure all these 4 interface for multicast grouping. So if there is traffic flow across the FW then the traffic should be forwarded to both the I/Fs. What I need to do to configure IP multicast on the Switch. I think CGMP is by default enabled. Please give me some guidance. regards imran _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7114&t=7114 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Router Integration with Ace Server for SecurID [7:33671]
hi, I have cisco 2621 with IOS (Firewall, Plus features and 56-bit IPSec encryption) feature set. I have client to site VPN established by the remote users with this VPN router. The users should have an external authentication using secure id. I tried configuring the ace server to work as an radius server and integrating directly with checkpoint firewall and this setup works fine I want to integrate the same ace server to work with the above router. I had added the normal aaa commands but the users are not asked for any authentication and they can access the local network after establishng the VPN. Can anyone give me sample config on intergrating the radius server with the router. --- With Best Regards Imran Obaidullah.M --- _ Send and receive Hotmail on your mobile device: http://mobile.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=33671&t=33671 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Router Integration with Ace Server for SecurID [7:33681]
hi, I have cisco 2621 with IOS (Firewall, Plus features and 56-bit IPSec encryption) feature set. I have client to site VPN established by the remote users with this VPN router. The users should have an external authentication using secure id. I tried configuring the ace server to work as an radius server and integrating directly with checkpoint firewall and this setup works fine I want to integrate the same ace server to work with the above router. I had added the normal aaa commands but the users are not asked for any authentication and they can freely access the local network after establishng the VPN. Can anyone give me sample config on intergrating the radius server with the router. --- With Best Regards Imran Obaidullah.M --- _ Send and receive Hotmail on your mobile device: http://mobile.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=33681&t=33681 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
connecting PABX to 7500
Hi, Is it possible to connect the PABX to the 7513 which has got 2 port T1/E1 high capacity digital port adapter. Is that you have anything like analog PABX and digital PABX. How many voice channels does this card will support. I could not get this details from cisco site, Please give me some details regrading the physical connection btn the PABX and 7500. Iam using 2600 routers with FXO at branch offices. Thanks imran Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ping-'request timeout porblem'
Hi, I have cisco 2900XL on which NT server & clients are connected there. I have a hub connected to that switch also. when I try to ping the Ntserver from the clients using the command ping x.x.x.x -t, it will ping contimously but inbetween it will give a message called ' REQUEST TIMED OUT' and again it will start pinging and after some n no of times I will get that message again. I tried setting port fast for the port where server is connected but no use. If I connect my server to the hub and ping the server from the client, I won't get that message. can some body help on this? Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
network troubleshooting
Hi, I have a network of around 20 macs connected to the hub and all accessing the internet through a single internet box which is ip based. I have replaced the hub with catalyst 3500 and when I connect the mac to the switch the led on the port is showing orange colour and then I made the all the port to full duplex, speed 100 then the switch started working. I think the nic in mac is not auto negotiating with switch port. But the users are complaining that the network is very slow and internet access speed also has come down. I really could not diagnoise the problem because the switch should give better performance than hub. Is there any troubleshooting procedues through which I can find out the problem. is there any software on the net which will show me the bottleneck. If any body has got information, please send it to me. regards imran Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Network Troubleshooting
Hi, I have a network of around 20 macs connected to the hub and all accessing the internet through a single internet box which is ip based. I have replaced the hub with catalyst 3500 and when I connect the mac to the switch the led on the port is showing orange colour and then I made the all the port to full duplex, speed 100 then the switch started working. I think the nic in mac is not auto negotiating with switch port. But the users are complaining that the network is very slow and internet access speed also has come down. I really could not diagnoise the problem because the switch should give better performance than hub. Is there any troubleshooting procedues through which I can find out the problem. is there any software on the net which will show me the bottleneck. If any body has got information, please send it to me. regards imran Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Network Troubleshooting
Hi, Thanks for your information. The server and the clients in the 1st floor are on the switcha and there is a uplink which connects the 2nd floor. But to the surprise the people in 2nd floor are not complaining onlt the clients in the 1st floor started complaining as soon as I changed them from hub to switch .I tried enabling port fast for all the ports except uplink and still they have same problem. Sometimes they can see their neighbour and after few secs you can't see anyone through NN. Know all ports led is howing green colour but when I try it to keep to the auto it completely disable or permanently it shows orange. The NICs are set to auto mode for both the duplex and speed modes. regards imran >From: "Luong, David" <[EMAIL PROTECTED]> >To: "'Cormac Long'" <[EMAIL PROTECTED]>,imran obaidullah ><[EMAIL PROTECTED]>, [EMAIL PROTECTED] >Subject: RE: Network Troubleshooting >Date: Thu, 01 Jun 2000 09:05:50 -0700 > >Yes, I agree what Cormac has said. In addition: > >You will also have to determine what applications they MAC's use in a daily >basis? If the traffic (client-server) has to go through a many hops to get >to the remote server either via WAN or different switches/hubs, it would be >best to place the server (or server farms) closer to the demand nodes such >as your MACS. Therefore, the resource nodes such as the servers are >located >strategically closer to the demand nodes and thus, not only providing >better >bandwidth but also minimize starvation of bandwidth between inter-segment >links. > >David Luong, CCNA,Network+,A+,i-Net+ >Telecommunications Analyst >Insurance Corporation of B.C. >Vancouver, B.C CANADA > > >-Original Message- >From: Cormac Long [mailto:[EMAIL PROTECTED]] >Sent: Thursday, June 01, 2000 3:48 AM >To: imran obaidullah; [EMAIL PROTECTED] >Subject: Re: Network Troubleshooting > > >Just some points to note here before you get into any >fancy management software. > >1. You should not trust autonegotiation of speed or >duplex. The autonegotiation protocols are very poorly >standardized. Be clear on what speed and duplex each >port/station can support and configure the switch >settings accordingly. > >2. A speed mismatch will render the port inoperable. A >duplex mismatch won't (i.e. the light will remain >green) but performance will suffer badly due to the >duplex mismatch which makes it very dangerous. > >3. When you connect to a switchport initally it will >remain orange for about 50 seconds in any case while >it waits for spanning tree to resolve itself. So don't >be fooled by this. You can put it into immediate >forwarding using the "portfast" feature. However don't >disable spanning tree on inter-switch links! > >4. In terms of the value gained by a switch, it is >also important to understand your client-server >traffic flows. For example a switch would give limited >benefit if most traffic had to cross the WAN to a >remote server. > >Regards, > >Cormac Long, CCSI#21600 >http://www.cormaclong.com > >--- imran obaidullah <[EMAIL PROTECTED]> wrote: > > Hi, > > > > I have a network of around 20 macs connected to the > > hub and all accessing > > the internet through a single internet box which is > > ip based. I have > > replaced the hub with catalyst 3500 and when I > > connect the mac to the switch > > the led on the port is showing orange colour and > > then I made the all the > > port to full duplex, speed 100 then the switch > > started working. > > > > I think the nic in mac is not auto negotiating with > > switch port. But the > > users are complaining that the network is very slow > > and internet access > > speed also has come down. > > > > I really could not diagnoise the problem because the > > switch should give > > better performance than hub. Is there any > > troubleshooting procedues through > > which I can find out the problem. is there any > > software on the net which > > will show me the bottleneck. If any body has got > > information, please send it > > to me. > > > > regards > > > > imran > > > > > Get Your Private, Free E-mail from MSN Hotmail at > > http://www.hotmail.com > > > > ___ > > UPDATED Posting Guidelines: > > http://www.groupstudy.com/list/guide.html > > FAQ, list archives, and subscription info: > > http://w
RE: Network Troubleshooting
Hi, Thanks all for your infos. I did a search through a appletalk website and I found some thing strange information. The website is http://til.info.apple.com/techinfo.nsf/artnum/n30922. It says that when the spanning tree protocol is enabled on an switch port to which a mac system is directly attached the system may be unable to use appletalk services. Issues observed range from no AppleTalk services, local (to this specific network) AppleTalk services, degraded performance, and intermittent network services. If the Spanning Tree protocol is enabled on the port to which a Macintosh system is attached packets necessary for AppleTalk address assignment and network discovery can be dropped by the switch. This causes the Macintosh to acquire invalid or incomplete network information resulting in the behavior discussed above. Fortunately there are some things you can do to resolve the issue. But the website also says that the TCP/ip services are not effected. Anyway, I tried disabling STP and kept all the ports to auto mode in the switch, to the surprise all the mac sys started negotiating and they are running at full duplex and 100 mbps now and their is no complaint from the users from past 2 days. I don't know whether the problem was really beacuse of STP or something else, I could not any R&D as users are online now. Thanks imrna >From: "Chuck Larrieu" <[EMAIL PROTECTED]> >To: "Leigh Anne Chisholm" <[EMAIL PROTECTED]>, "imran obaidullah" ><[EMAIL PROTECTED]>, <[EMAIL PROTECTED]> >Subject: RE: Network Troubleshooting >Date: Fri, 2 Jun 2000 18:01:28 -0700 > >Hope you don't mind me butting in here. These kinds of design questions and >capacity planning issues continue to intrigue me, and I want to continue to >broaden my perspective by examining the thought processes of others. >Comments below: > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of >Leigh Anne Chisholm >Sent: Thursday, June 01, 2000 12:11 PM >To:imran obaidullah; [EMAIL PROTECTED] >Subject: RE: Network Troubleshooting > >It honestly sounds as if your first floor switch is having difficulty >moving >data between its ports and the server. > >When you're deploying switches in what has traditionally been a shared >environment, you must be careful to ensure that you haven't oversubscribed >your uplinks (whether they be uplinks to servers, or between switches). >Plugging 24 100 Mbps (half-duplex) connections into a switch with a 100 >Mbps >(half-duplex) uplink spells disaster. The 100 Mbps uplink contends with a >theoretical (24 x 100 Mbps) 2,400 Mbps capacity. Using the same analogy, >but lowering the client data rate to 10 Mbps results in a theoretical 240 >Mbps throughput for the 100 Mbps uplink to contend with. And when >full-duplex is used on the client side, the magnitude of the >oversubscription increases again. > >CL: In general, I would find it difficult to believe that all machines at >all times would be pumping 100 mbs into the switch. So that gets into the >issue of the applications involved. So I guess my question is how one goes >about determining capacity requirements. I suppose that if LAN based >videoconferencing is used widely, one's conclusions would be different than >if the primary application was some kind of TN3270 application. Rule of >thumb - uplink requirement is X% of the theoretical maximum of the sum of >all connected workstations and servers? > >Properly deploying switches in a shared network environment requires that >you understand how your network functions--what capacity is required, where >Fast EtherChannel should be deployed, when 100 Mbps throughput should be >used and when should 10 Mbps be sufficient... and finally, when should you >use full-duplex, and when should you use half? > >CL: In general, what are some of the considerations that would lead one not >to prescribe full duplex? Or 10 rather than 100? My own thought is that one >would create the capability of bandwidth so that it is there when needed. >Kinda like a stereo system with 350 watts per channel output to the >speakers. Not that the full 350 is being used all the time, but so that >during those crescendos, the power is there to deliver the sound without >distortion. > >Capacity planning is the **most** important aspect of a successful >switch-fabric deployment. Undersubscription of links is always preferable >to oversubscription. > >CL: in this case, I am guessing that you would agree that consideration of >the backplane capacity of the switch enters into the picture as well. Same >question as above. Do you folks experienced in switched networks have some >rule of thumb you use? Or is
PIX vs CheckPoint
Hi friends, I have few basic questions, 1. If I can implement NAT and Access policy on normal router which has 2 ethernet interfaces then how PIX improves the perfomance as an dedicated Firewall(If Iam not implemeting VPN). 2 Which is the best firewall and more reliable. What are the perfomance difference between the PIX and CheckPoint. Please send me the details Thanks imran _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX vs CheckPoint
Hi friends, I have few basic questions, 1. If I can implement NAT and Access policy on normal router which has 2 ethernet interfaces then how PIX improves the perfomance as an dedicated Firewall(If Iam not implemeting VPN). 2 Which is the best firewall and more reliable. What are the perfomance difference between the PIX and CheckPoint. Please send me the details Thanks imran _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX vs CheckPoint
Hi David, Thanks for the link. The URL answers my 2nd question. Can you give me some details on the first qstn. regards imran -Original Message- From: David Wolsefer To: Imran Obaidullah M Cc: [EMAIL PROTECTED] Sent: 1/12/01 11:04 PM Subject: RE: PIX vs CheckPoint This is what you want: http://www.roble.com/docs/fw1_or_pix.html Regards, David Wolsefer, CCIE #5858 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Imran Obaidullah M Sent: Friday, January 12, 2001 4:23 AM To: '[EMAIL PROTECTED]' Subject: PIX vs CheckPoint Hi friends, I have few basic questions, 1. If I can implement NAT and Access policy on normal router which has 2 ethernet interfaces then how PIX improves the perfomance as an dedicated Firewall(If Iam not implemeting VPN). 2 Which is the best firewall and more reliable. What are the perfomance difference between the PIX and CheckPoint. Please send me the details Thanks imran _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX vs CheckPoint
Hi, Thanks for the link. It answers my 2nd question. Can you give some details on the 1st. Regards imran -Original Message- From: David Wolsefer To: Imran Obaidullah M Cc: [EMAIL PROTECTED] Sent: 1/12/01 11:04 PM Subject: RE: PIX vs CheckPoint This is what you want: http://www.roble.com/docs/fw1_or_pix.html Regards, David Wolsefer, CCIE #5858 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Imran Obaidullah M Sent: Friday, January 12, 2001 4:23 AM To: '[EMAIL PROTECTED]' Subject: PIX vs CheckPoint Hi friends, I have few basic questions, 1. If I can implement NAT and Access policy on normal router which has 2 ethernet interfaces then how PIX improves the perfomance as an dedicated Firewall(If Iam not implemeting VPN). 2 Which is the best firewall and more reliable. What are the perfomance difference between the PIX and CheckPoint. Please send me the details Thanks imran _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
